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I isting of Claims : 



iial files and data within the 



1. (previously presented) ^ method for scann 
connected to a network, comprising; , ! ;f ; 

« .r ii. .. 

(a) detecting connection of a fifet- network devicejlfo the network; 

(b) performing remote agentless seaming of ihte 
internal files on the first network device to determine intdmal security settings 
therefrom, the remote agentless scanning ijteing perfornied automatically in response 

to detection of the first network device!; to theYeby avoid lownloading a software agent 

' ' y 

to the first network device; ■* ' 

. '< . . vi* 

(c) comparing the internal security Sejttirigs deterl lined through the remote 

' . y 

agentless scanning with predefined security? settings to Jetermine compliance 



@005 



RECEIVED 

cENm-m'eeMTER 
AUG 2 0 m 



ing network devices 



therewith; and 



(d) automatically performing aYembte irtstallatior 



program on the first network device ifltfcte iHterrial secun ty settings are not in 



r. 



compliance with the predefined network settings. 



of a security software 



step (a) further comprises 



2. (original) The method cjf clainji 1 wherein 

inspecting data packets communicated over the netwo <. 

. ■ - ; 

3. (original) The method of claim 1 wherein [the detecting step further 
comprises querying a database. ; 
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4. (original) The method of jclaifrip further, comprising continuously 
broadcasting pings on the network; coytinupusly examin rig address resolution 
protocol tables, continuously monitoring event Idgs. tran imitting a Lightweight 
Directory Access Protocol (LDAP) qu|y. S\6 transmitti|g a Domain Name System 
query. : ) J- 



: i 

. : ! . ■ <i 



(original) The method of cla|n 1 wherein 



determining at least one of whether tr*e fira: network de 



socket, whether the first network devi|e isjepnnecting t( 1 

access, and whether the first netwo*jdev|l is conned rig to the network via wireless 
access and whether the first netwbn$devie& is connec ng to the network via a 

.;{■ ;;•■{ 

Virtual Private Network. • ft; . 'i • ' . 

1 fi 



6. (original) The method Of claftp 1 wherein 

. fi • . 

determining a property of the first netirorW device. 



♦if 8 * 1M 
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tep (b) further comprises 
ice is plugged into a wall 
the network via wireless 



step (b) further comprises 



network d 



7. (previously presented) ^The : |t 
comprises determining an identity bfJfhe 

• i * 

8. (original) The method ;6f drdSm 7 wherein 



;ethod of cle m 1 wherein step (b) further 



jvice. 



of the first network device further coh&prisfes ^t least! or i of querying a database 



where the type has been deterinniried^ examining rietwt :k traffic, analyzing network 



behavior, probing the first network disvicJeffor signature 
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the determining of the identity 



responses, attempting to fog 
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into the device using a series of protof>ls; lagging into th|s first network device and 
querying data within the device. 



•<!; 
••is 



:>i' 'ts, 

9. (original) The method bjcialm 



1 !if: ! 



scanning at least one of a configuratidli> file; 



inventory, hardware, and a security vitrei 

■ f •'it 



'14- 



10. (original) The method'of fclaS 
updating at least one of a configuration, file; 



a security vulnerability of the first network I^Vice. 



1 1 . (canceled) 



J. 



1 j ! 



12. (previously presented) 



M/!; ; Phi- .: • : ■ i 

comprises determining if the first network) leyice is part of a windows domain 



[1 wherein s 



Idata, a softtvareiversion, a patch, 



t. 



ifity of the fust network device. 



f'1 wherein step (b) further comprises 
data, a soft varej version, inventory, and 



.The plethod of tela 

.» : 



13. (original) The method fflclaf 

. i \\\ i . £: 

8 IP ' IF 

enabling the first network device tech&ve'a^ 

'jL. 

the first network device access to tn& network, notifying 



■INI 



network device based on results of $?e sq^pjj and quarantining the first network 
device. 
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ep (b) further comprises 



m 1 Wherein step (b) further 



! 

1 further comprising at least on© of 

ional access to the network, denying 

!- 

another about the first 
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14 (original) The method b|clai& f further; comprising at least one of 
setting a security policy on the first r^porlMe'vlde. auditing the security policy of the 

first network device, ensuring complice Jith a predetermined security policy, and 

ii g: ft"- ■ '• i 

reporting results. . j jij! ; 



1 5 (previously presented)rin apparatus for remote agentless scanning of 
network devices on a network composing:; 
(a) a detecting module thatjde:' 



network; and 



:ects 



(b) a scanning module that ^etfpi 

if If! 

files and data within the internal fifes ;©h tlr 



security settings therefrom, the rembfe; agf rtirtless scanning being performed 



automatically in response to the detection 



hi! 



downloading a software agent to t^e)|rst 
(c) comparing the internal security 



gemote agentles.s scanning of internal 

I. ■ 1 I ; 

1 ' r. ! 

first network device to determine internal 



connection of a first network device to the 



! 



hdrwbrk 



agentless scanning with predefined spcuri ^ settings to 



therewith; and 

(d) automatically performing^ remifeVinstallatiora of a security software 

m\ mi: ' 

program on the first network devicfejH the 



I'll * ■* 

compliance with the predefined network s s ting's. 



I 
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emal securpty settings are not in 



t 



device to thereby avoid 



f the first i 
favork devic 

?ttings determined through the remote 
determine compliance 
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16. (original) The apparatd 
continuously polls a database for dat|jcorr|^onding : to 
devices. 



attis of c 



II! 



m 15 wherein the detecting module 



17. (original) The appar^jtfr of 
remotely scans the first network deyi| 3 upfi 
network device in the database. 



?! 



@009 



hewlV attached network 



irti 16 wherein the scanning module 

X ■ ; I j 

njdetecting data corresponding to the first 



18. (original) The apparatili of < Sim 1;5 further comprising a history 



database storing scan results of a sjtSn pe formed by me scanning module. 



19 (original) The apparatifs of gain 1 5 wheifein tfoe scanning module can 

m m . ,: j i 

at least one of enable the first netv^lc def^e toj have ddditional access to the 



network, deny the first network device & 



the first network device based on 
device. 



20. (original) The apparbtl 

US 

management module for at least on* 

\$ 

device, auditing the security policy \ 

\% 

with a predetermined security policy: 



□Its 
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Vs from the hetwork, notify another about 

A 1 ! 

tfie scan, and quarantine the first network 
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Jrn 15 further comprising a security policy 

iji'ipg a security policy on the first network 

fit-- : '■ : I ' ! 

si network device, ensuring compliance 

% ' . ; . j 
|orting results. I 
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21 . (previously presented) W meg p for exam ning 



connected to a network, comprising^ 
(a) querying a database for p 
to a network; 



re 



(b) determining connection dm firs ifetworkdev 



111 

23. (original) The method 

V 

least one of querying a database 
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data about the first network device jtj 

(c) determining properties l 

i 

determine the identity of the first ne1 

|. 

(d) determining items to sc^ 

(e) performing remote agen^j 
Internal files on the first network de\ 



therefrom, the remote agentless soaring 

111 

to the determination of the connectr " J 
thereby avoid downloading a softw 



22. (original) The method 
determining at least one of credenjti 
type of the first network device. 



0 

Renting connection of network devices 



^termine in 



Ingjperforrhed automatically in response 



irst netwo 

•i 

to the first 



f clc Ip2l iiwhereiip step (c) further comprises at 



examining network traffic, analyzing] li'ei 



signature responses, and logging p 



|21 ^herein stefp (c) further comprises 

i 

he first network device and 



Sated with 



eioio 



a first network device 



ce to 



the network by locating 



iase; 

WaL the firfet network device to 



n at least one of the properties; and 
hing of internal files and data within the 
^i„_.„: — r^k^^i security settings 



brna! 



k device to the network to 
hetwprk device. 



V, «l 

identity has- already been determined, 

|| behavior, prob ng the device for 

*,*a ******* 

ide to qufery data 
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24. (original) The method 
selecting a set of security policy sett 



25. (original) The method|| ; (blai|j^1 further 
allowing the first network device to 



flclai 



access to the network, notifying an(> 

i 

results of the remote scanning, and 



26. (canceled) 



I- 1 " 



27. (previously presented||rKii' | gjhdd of cle 



internal files and data in step (b) cb 
hardware and software oh the first 

28. (previously preserite 
internal files and data in step (b) 
hardware and software, 

29. (previously presente 
internal files and data in step (b) c 
hardw^^ 



Ijhej 

1 1 M 
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2k wherein step (e) further comprises 



acce >s 



itlorial 

J 

ttfe first rH 



comprising at least one of 
to 



spanning a 
device. 



the network, denying 

1 

etwo[rk device based on 
: network device. 



4thod of els 
sbahning 

1 M 
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m 1 j/vherein the scanning of 

' i 

stored configuration of 



dtho'd of claim 27 wherein the scanning of 
Scanning 

i 



incorrectly configured 



Im 1 



wherein the scanning of 
incorrebtly configured 
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30. (previously presented) 
internal files and data in step (b) co 
version. 

j 

31 . (previously presented! 
internal files and data in step (b) cc 

32. (previously presented 
internal files arid data in step (b) col 

■I 

33. (previously presented! 
module scans a configuration of h 



he^thod of claim 1 therein the scanning df 



rise 



aoi2 



im 15 wherein the scanning 



34. (previously presented^h^jethc^d of cla m 1 5 wherein the scanning 
module scans to determine a soMPHb v^on; I 

35. (canceled) 

36. (previously presentc 
module scans a software patch. 

37. (previously presented TYii 

i 

module scans for viruses.! 

! 

J 

| 
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canning to determine a software 

* »l 

• ;:i 
■| 

fethocl of claipi 1 wherein the scanning of 

in 

scanning a software patch 



1 •*[ 

thdd of clailm 1 Wherein the scanning of 

■4 

scanning for viruses. 



paratus of claim 
nd software 



Thl^eth'oid of cla 

• ii 



.3 



pparatus of 



15 wherein the scanning 
on the first network device. 



ii 



claim 15 wherein the scanning 
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38. (previously presented) 



performing a remote installation of alecuBlr software progra^ft in step (d) comprises 



installing a new version of the softoyjei 



39. (previously presented! j Thel ethod of claim 1 wherein the scanning of 



internal files and data in step (b) ccijrj prisi 
software, and wherein automatically 
software program in step (d) compi 

I 

software if the predetermined anti 



r a predetermined anti-virus 

r 

a remote installation of a security 
allirfg the pre determined anti-virus 
in step (b>. 



installed, and wherein automatical' 
software program In step (tl) comp) 
determined in step (b) that the fire^ 

performing a remote install 
installing a new version of 

42. (previously presented 
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Wherein automatically 



40. (previously presented!); TH J lethcd of claim 1 Wherein the scanning of 



internal files and data in step (b) c#mpris| determining' whether firewall software is 



a remotp installation of a security 

software if it is 
has not yet been installed. 



etfjod of clai m 36 wherein automatically 
sdC^jty software program in step (d) comprises 



im 15 wherein the scanning of 



internal files and data in step (b) c$jHpril|fc searching for a predetermined anti-vinjs 



PAGE 13/18 * RCVD AT 8/20/2007 6:15:13 PM [Eastern Daylight T me] * SVR:USPTO-EFXRF-6/6 * DN S:2738300 * CSID:801 578 6999 * DURATION (mm-ss):03-36 

BEST AVAILABLE COPY 



08/20/2007 16:18 FAX 801 578 6999 



STOEL RIVES 



software, and wherein 
software program in step 
software if the predetermined 



automatically 



isles i 



43. (previously pi esentedp 
internal files and data in step (b) ajjfjpriji 

installed, and wherein autcmaticall|| 

j 

software program in step (d) compi 
determined in step (b) that the firews. 

44. (previously presented 

s 

comparing the internal security se 
scanning of internal files apd data 
compliance therewith. 

:!ifi 

|r 

45. (previously presented) 

If. 

agentless scanning comprises searehini 
whether anti-virus softwarfe is insfa 
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s installed 



/are 



installation of a security 

i 

t 

anti-virus 
fcjund jin step (b). 



ling ja remote : 
ailing the predetermined 
is not 



tethod of 

determining 

I 

d a remote 



claifn 1&wherein the scanning of 

• 'i 

whether firewall software is 



on 



46. (previously present€ 
agentless scanning comprises seq^ilp|he!fp1st network device to determine 
whether firewall software 



■i \ 
O-EFXRF-6/6 * DH 
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first networ c device. 
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» installation of a security 

'] 

tailing the fir^walPsoftware if it is 
ire! has not l/et tfeen installed. 

'i 

6thbd of cla m 21 further comprising 

:ermined throlugh the remote agentless 

; i 

efitied secu ify settings to determine 



tiiethbd of clajm 2i , wherein the remote 

' 'it ! 

6; first network device to determine 

'V j'j * ' i 
ti£ first netwlprk dbvice 

\ 

etfifod of clsjim 2i1 , wherein the remote 
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